The U.S NSA and CISA have shared tips to secure the software supply chain. But is this actually a step in the right direction?
After the snowball effect of supply-chain attacks like the SolarWinds hack that compromised multiple U.S govt agencies (which brought about President Biden’s Executive Order on cybersecurity measures), it’s not surprising that we’re now seeing guidance on how to plug vulnerabilities in the software supply chain that nation-state-backed threat groups can easily exploit.
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.